基于改进的Diameter/EAP-MD5的SWIM认证方法

吴志军; 赵婷; 雷缙

doi:10.3969/j.issn.1000-436x.2014.08.001

您当前的位置：

首页 >

文章列表页 >

基于改进的Diameter/EAP-MD5的SWIM认证方法

学术论文 | 更新时间：2024-10-11

- 基于改进的Diameter/EAP-MD5的SWIM认证方法
- Authentication method in SWIM based on improved Diameter/EAP-MD5
- 通信学报 2014年35卷第8期页码：1-7
- 作者机构：
- 作者简介：
  
  [ "吴志军（1965-），男，河南固始人，中国民航大学教授、博士生导师，主要研究方向为网络与信息安全。" ]
  [ "赵婷（1989-），女，山西临汾人，中国民航大学硕士生，主要研究方向为网络与信息安全。" ]
  [ "雷缙（1982-），女，四川泸州人，中国民航大学博士生、讲师，主要研究方向为网络与信息安全。" ]
- 基金信息：
  
  国家自然科学基金资助项目;The National Natural Science Foundation of China(61170328);天津市应用基础与前沿技术研究计划基金资助项目;The Natural Science Foundation of Tian-jin(12JCZDJC20900);中央高校基本科研业务费专项基金资助项目;Postgraduate Course Construction Projects of Civil Aviation University of China(31122013P007);中央高校基本科研业务费专项基金资助项目;Postgraduate Course Construction Projects of Civil Aviation University of China(ZXH2012P004);中国民航大学研究生课程建设基金资助项目2013;The Fundamental Research Funds for the Central Universities
- DOI：10.3969/j.issn.1000-436x.2014.08.001
  中图分类号： TP393
- 网络出版日期：2014-08，
  
  纸质出版日期：2014-08-25
- 稿件说明：
移动端阅览
吴志军, 赵婷, 雷缙. 基于改进的Diameter/EAP-MD5的SWIM认证方法[J]. 通信学报, 2014,35(8):1-7.

Zhi-jun WU, Ting ZHAO, Jin LEI. Authentication method in SWIM based on improved Diameter/EAP-MD5[J]. Journal on communications, 2014, 35(8): 1-7.
吴志军, 赵婷, 雷缙. 基于改进的Diameter/EAP-MD5的SWIM认证方法[J]. 通信学报, 2014,35(8):1-7. DOI： 10.3969/j.issn.1000-436x.2014.08.001.

Zhi-jun WU, Ting ZHAO, Jin LEI. Authentication method in SWIM based on improved Diameter/EAP-MD5[J]. Journal on communications, 2014, 35(8): 1-7. DOI： 10.3969/j.issn.1000-436x.2014.08.001.

摘要

广域信息管理(SWIM

system wide information management)采用面向服务的体系结构(SOA

service oriented architecture)提供民航信息交互与数据共享功能。在分析SWIM体系结构和基于Diameter协议的EAP-MD5应用子协议基础上，给出标准Diameter/EAP-MD5认证过程中存在的安全隐患，改进了EAP-MD5认证协议，提出基于改进的Diameter/EAP-MD5协议的SWIM用户身份认证方法，研究基于Diameter的SWIM认证服务，并在模拟的SWIM环境中对改进方法进行仿真实验和安全性分析。实验结果表明，改进的Diameter/EAP-MD5认证方法可在计算性能相当的前提下提高SWIM认证系统的安全性，为SWIM安全服务框架的构建提供保障。

Abstract

System wide information management (SWIM) provides the civil aviation information exchange and data sharing function by using service-oriented architecture (SOA). Based on the analysis of SWIM architecture and the sub-protocol EAP-MD5 of Diameter

the security vulnerable of authenticating process in standard Diameter/EAP-MD5 is explored

the EAP-MD5 authentication protocol is improved

and the SWIM authentication service based on Diameter is studied

then the SWIM authentication method based on improved Diameter/EAP-MD5 protocol is proposed. Experi-ments on the security of SWIM authentication service based on Diameter are performed in SWIM simulation environ-ment

results show that the improved Diameter/EAP-MD5 authentication method can enhance the security of SWIM au-thentication and guarantee SWIM security service.

关键词

Keywords

references

DARIO D C , ANTONIO S , GEORG T . SWIM- a next generation ATM information bus-the SWIM-SUIT prototype [A ] . 2010 14th IEEE International Enterprise Distributed Object Computing Conference Workshops (EDOCW) [C ] . 2010 . 41 - 46 .

吕小平，齐鸣 . 浅谈SWIM [J ] . 民航管理， 2009 ,( 5 ): 68 - 69 .

LV X P , QI M . A brief discussion of SWIM [J ] . Civil Aviation Man-agement , 2009 ,( 5 ): 68 - 69 .

BOB S . Security architecture for system wide information manage-ment [J ] . The 24th 2005 Digital Avionics Systems Conference (DASC 2005) [C ] . 2005 .

BOB S . System-wide information management (SWIM) demonstra-tion security architecture [J ] . 2006 IEEE/AIAA 25th Digital Avionics Systems Conference [C ] . 2006 . 1 - 12 .

Federal Aviation Administration . System Wide Information Manage-ment (SWIM) eXtensible Markup Language (XML) Gateway Re-quirements [S ] . 2009 .

International Civil Aviation Organization . Web service security stan-dards [A ] . Aeronautical Telecommunication Network Implementation Coordination Group-Eighth Working Group Meeting [C ] . Christchurch New Zealand , 2010 .

邱锡鹏，刘海鹏 . Diameter 协议研究 [J ] . 计算机科学， 2013 , 30 ( 2 ): 75 - 78 .

QIU X P , LIU H P . Research on diameter protocols [J ] . Computer Sci-ence , 2013 , 30 ( 2 ): 75 - 78 .

IETF RFC3588. Diameter Base Protocol [S ] . 2003 .

IETF RFC3748. Extensible Authentication Protocol(EAP) [S ] . 2004 .

IETF RFC 4072, Diameter Extensible Authentication Protocol(EAP) Application [S ] . 2005 .

陈凤其，姚国祥 . 一种基于Hash函数的EAP认证协议 [J ] . 计算机系统应用， 2010 , 19 ( 6 ): 74 - 77 .

CHEN F Q , YAO G X . A hash-based EAP authentication protocl [J ] . Computer Systems ＆ Applications , 2010 , 19 ( 6 ): 74 - 77 .

陈世伟，金晨辉 . MD5碰撞攻击中的充要条件集 [J ] . 软件学报， 2009 , 20 ( 6 ): 1617 - 1624 .

CHEN S W , JIN C H . Set of necessary and sufficient conditions in collision attacks on MD5 [J ] . Journal of Software , 2009 , 20 ( 6 ): 1617 - 1624 .

赵志新，祝跃飞，梁立明 . 无线局域网隧道认证协议 PEAP 的分析与改进 [J ] . 信息工程大学学报， 2005 , 6 ( 3 ): 52 - 55 .

ZHAO Z X , ZHU Y F , LIANG L M The analysis and mend of PEAP protocol in WLAN [J ] . Journal of Information Engineering University , 2005 , 6 ( 3 ): 52 - 55 .

吉晓东 . 支持身份隐藏的EAP-PSK协议改进 [J ] . 南通大学学报(自然科学版) , 2007 , 6 ( 2 ): 74 - 77 .

JI X D Improvement of EAP-PSK protocol enabling identity pri-vacy [J ] . Journal of Nantong University (Natural Science) , 2007 , 6 ( 2 ): 74 - 77 .

王志中 . MD5算法在口令认证中的安全性改进 [J ] . 电脑知识与技术， 2012 , 8 ( 2 ): 296 - 297 .

WANG Z Z Security improvement of MD5 algorithm in password authentication [J ] . JComputer Knowledge and Technology , 2012 , 8 ( 2 ): 296 - 297 .

浏览量

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

基于矩阵填充问题的五轮零知识身份认证方案

卫星通信网中一种新的实体认证与访问控制方案

多云环境下基于智能卡的认证方案

基于顽健线性判别分析的击键特征识别方法

基于TPM的云计算平台双向认证方案